[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248678

 
 

909

 
 

195426

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 31193 Download | Alert*

Microsoft Dynamics 365 On-Premises Remote Code Execution Vulnerability. The attacker for this vulnerability could target the server accounts in an arbitrary or remote code execution. As an authenticated user, the attacker could attempt to trigger malicious code in the context of the server's account through a network call.

The host is installed with Microsoft Paint 3D before 6.2305.16087.0 and is prone to a remote code execution vulnerability. A flaw is present in the application which fails to properly handle validation of user-supplied input. Successful exploitation could allow a remote attackers to trick a victim to open a specially crafted file and execute arbitrary code on the target system.

Microsoft Office Elevation of Privilege Vulnerability.

Active Directory Federation Service Security Feature Bypass Vulnerability. An attacker would require access to a low privileged session on the user's device to obtain a JWT (JSON Web Token) which can then be used to craft a long-lived assertion using the Windows Hello for Business Key from the victim's device. By exploiting this vulnerability, an attacker can craft a long-lived assertion and imper ...

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability. On successful exploitation, there could be a loss of confidentiality if an unaware user clicked on a popup therefore creating an opportunity for an attacker to retrieve cookies or present the user with a dialog box to enter user credentials.

Microsoft Outlook Security Feature Bypass Vulnerability.

The host is installed with JetBrains YouTrack before 23.1.10518 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle Markdown-rendering engine. Successful exploitation could allow attackers to cause unpecified impact.

The host is installed with JetBrains YouTrack before 23.1.10518 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle Helpdesk forms. Successful exploitation could allow attackers to cause denial of service.

The host is installed with MOVEit Transfer 2020.0.x before 2021.0.7 (13.0.7), 2021.1.x before 2021.1.5 (13.1.5), 2022.0.x before 2022.0.5 (14.0.5), 2022.1.x before 2022.1.6 (14.1.6), 2023.0.0 before 2023.0.2 (15.0.2) and is prone to a SQL injection vulnerability. A flaw is present in the application, which fails to properly handle issues in database. Successful exploitation could allow an unauthen ...

The host is installed with MOVEit Transfer 2020.0.x before 2021.0.6 (13.0.6), 2021.1.x before 2021.1.4 (13.1.4), 2022.0.x before 2022.0.4 (14.0.4), 2022.1.x before 2022.1.5 (14.1.5), 2023.0.0 before 2023.0.1 (15.0.1) and is prone to a SQL injection vulnerability. A flaw is present in the application, which fails to properly handle issues in database. Successful exploitation could allow an unauthen ...


Pages:      Start    1839    1840    1841    1842    1843    1844    1845    1846    1847    1848    1849    1850    1851    1852    ..   3119

© SecPod Technologies